Zxtwonder

**Name of the Vulnerable Software and Affected Versions** BlueZ (affected versions not specified) **Description** The issue is related to the cli feat read cb() function in the src/gatt-database.c file of the Bluetooth protocol stack for Linux. It does not perform bounds checks on the `offset` variable before using it as an index into an array for reading. This can lead to a buffer overflow, allowing an attacker to disclose protected information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.